Python Exploits
6,700 exploits tracked across all sources.
Microsoft Excel 2002 SP3-2007 SP2 - Remote Code Execution via FEATHEADER Record
Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows remote attackers to execute arbitrary code via a spreadsheet with a FEATHEADER record containing an invalid cbHdrData size element that affects a pointer offset, aka "Excel Featheader Record Memory Corruption Vulnerability."
by anonymous
CVSS 7.8
Microsoft Office Word 2000 SP3, 2002 SP3, 2007 SP1-SP2 - Remote Code Execution via Malformed Record
Buffer overflow in Microsoft Office Word 2000 SP3, 2002 SP3, and 2007 SP1 and SP2; Microsoft Office for Mac 2004 and 2008; Open XML File Format Converter for Mac; and Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows remote attackers to execute arbitrary code via a Word document with a malformed record that triggers memory corruption, aka "Word Buffer Overflow Vulnerability."
by anonymous
PlayPad Music Player 1.12 - '.mp3' Denial of Service
by Praveen Darshanam
Crystal Player 1.98 - '.mls' Buffer Overflow
by Praveen Darshanam
AV Music Morpher Gold 5.0.38 - '.m3u' Denial of Service
by b0telh0
httpdx 1.5.4 - Multiple Denial of Service Vulnerabilities (http-ftp) (PoC)
by Dr_IDE
Triologic Media Player 8 - '.m3u' Universal Unicode Local Buffer Overflow (SEH)
by Glafkos Charalambous
MUSE 4.9.0.006 - '.pls' Universal Local Buffer Overflow (SEH)
by Glafkos Charalambous
MUSE 4.9.0.006 - '.m3u' Local Buffer Overflow
by Glafkos Charalambous
Xilisoft Video Converter 3.1.8.0720b - '.ogg' Buffer Overflow
by Praveen Darshanam
Rosoft Media Player 4.4.4 - Local Buffer Overflow (SEH) (2)
by dijital1
Ingres database server <9.0.4 - RCE
Multiple "pointer overwrite" vulnerabilities in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA (formerly Computer Associates) products, allow remote attackers to execute arbitrary code by sending certain TCP data at different times to the Ingres Communications Server Process (iigcc), which calls the (1) QUinsert or (2) QUremove functions with attacker-controlled input.
by fdiskyou
Adobe ColdFusion <9.0.1 - Path Traversal
Multiple directory traversal vulnerabilities in the administrator console in Adobe ColdFusion 9.0.1 and earlier allow remote attackers to read arbitrary files via the locale parameter to (1) CFIDE/administrator/settings/mappings.cfm, (2) logging/settings.cfm, (3) datasources/index.cfm, (4) j2eepackaging/editarchive.cfm, and (5) enter.cfm in CFIDE/administrator/.
by anonymous
CVSS 9.8
Xion Audio Player <1.0.126 - Buffer Overflow
Xion Audio Player versions 1.0.126 and prior are vulnerable to a Unicode-based stack buffer overflow triggered by opening a specially crafted .m3u playlist file. The file contains an overly long string that overwrites the Structured Exception Handler (SEH) chain, allowing an attacker to hijack execution flow and run arbitrary code.
by corelanc0d3r
Mediacoder 0.7.5.4710 - 'Universal' Local Buffer Overflow (SEH)
by Dr_IDE
Sonique 2.0 - '.xpl' Remote Stack Buffer Overflow
by Hamza_hack_dz & Black-liondz1
CombiWave Lite 4.0.1.4 - Denial of Service
by Oh Yaw Theng
EasyFTP Server 1.7.0.11 - (Authenticated) Multiple Commands Remote Buffer Overflows
by Glafkos Charalambous
Mediacoder 0.7.5.4710 - Local Buffer Overflow
by anonymous
RightMark Audio Analyzer 6.2.3 - Denial of Service
by Oh Yaw Theng
Microsoft Windows Live Messenger 14.0.8117 - Animation Remote Denial of Service
by TheLeader
By Source